class ApplicationController < ActionController::Base
  # Prevent CSRF attacks by raising an exception.
  # For APIs, you may want to use :null_session instead.
  protect_from_forgery with: :exception

 # before_action :configure_permitted_parameters, if: :devise_controller?

  protected
  def configure_permitted_parameters

  end

  #获取当前用户并存入实例变量
  def current_user
    @_current_user = session[:email]
  end
 
end
